n11.com Selects WhiteHat Security's SAST Solution

  • Security and Compliance , IT Innovations
  • 23.08.2016 12:45 pm

WhiteHat Security announced that n11.com, the leading e-commerce site in Turkey, has selected WhiteHat Sentinel Source, the company's static application security testing (SAST) solution, to ensure security is addressed early in the software development lifecycle (SDLC).

"The threat landscape we are facing has changed dramatically in the past six months and it's important that we increase our security efforts right at the start of our coding," said Alper Ümit Yilmaz, Director of IT Service & System Operations for n11.com. "After carefully studying the marketplace, and reading news stories and reports showing how hackers are getting into organizations through vulnerable software, n11.com made the decision to act. We wanted a solution that could help us ensure the security of our software in production. Security is our number one priority, and is always at the forefront of our operations."

n11.com previously chose WhiteHat Sentinel Dynamic for its dynamic application security testing (DAST), to provide continuous vulnerability assessments of the company's live websites. The success of the DAST solution prompted Yilmaz and his team to review WhiteHat's Sentinel Source product for pre-production testing. In addition to providing increased security, the team found that Sentinel Source also increased developer productivity and confidence, and helped get secure code into QA much faster.

"WhiteHat Sentinel Source immediately improved security and saved us time and effort, all without having to change any of our infrastructure. Importantly, with Sentinel Source running in parallel with Sentinel Dynamic, we now have full coverage throughout our entire SDLC," Yilmaz concluded.

"WhiteHat's Sentinel Source and Sentinel Dynamic solutions are the perfect fit for companies looking to accurately identify vulnerabilities throughout the software lifecycle," added Ibrahim Arslan, General Manager of Exclusive Networks, a leading value-added distributor and the WhiteHat partner working closely with n11.com. "The Sentinel solutions not only provide immediate visibility into vulnerabilities, but they also give customers clear information about why they were vulnerabilities, where they were within the code, and what customers need to do to fix them."

Unlike a tools-based solution that sits at the developer level and is prone to producing many false positives, WhiteHat Sentinel Source returns verified vulnerabilities with false positives removed so that developers can focus their efforts on addressing the most critical vulnerabilities to the business. All WhiteHat solutions are backed by the expertise of the security experts in the company's Threat Research Center (TRC), who verify all vulnerabilities first in order to deliver near zero false positives. As the threat landscape evolves and hackers become smarter, more effective and more focused, so does the TRC team and the WhiteHat application security platform. WhiteHat customers are able to stay ahead of the latest application security attack vectors, even without having any internal application security experts.

"Every day we are seeing more and more attacks at the application level, yet most companies still aren't investing in the application security solutions they need to address vulnerabilities throughout the whole SDLC. N11.com is to be commended for making security as big a priority early in the development process as it is for the company's live applications," said Craig Hinkley, CEO of WhiteHat Security. "As a result of their efforts to introduce secure coding best practices across the organization, n11.com's customers can be confident that the apps they interact with on then11.com marketplace are secure from the inside out."

Related News